Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/En4HmIZoYez4eABWypkkXklSK90.roa
File: En4HmIZoYez4eABWypkkXklSK90.roa (raw, json)
Hash identifier: c/zilMcvZ9lZyTHv7TJ5SnkAm1veuBrWkhJp6z+KlAM=
Subject key identifier: 12:7E:07:98:86:68:61:EC:F8:78:00:56:CA:99:24:5E:49:52:2B:DD
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 0183D637ACCA671B97E03CBA24D5E4B11716
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/En4HmIZoYez4eABWypkkXklSK90.roa
Signing time: Fri 14 Oct 2022 11:18:36 +0000
ROA not before: Fri 14 Oct 2022 11:18:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.204.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d6:37:ac:ca:67:1b:97:e0:3c:ba:24:d5:e4:b1:17:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Oct 14 11:18:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=127e0798866861ecf8780056ca99245e49522bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4a:e2:21:46:02:4c:80:84:75:45:0e:a0:96:
50:c3:ed:19:62:91:9e:89:e7:76:1f:bc:09:91:e6:
9f:67:42:27:ba:5d:ce:da:5b:b1:ce:13:79:69:7f:
66:e2:4d:ea:a9:5d:4b:62:ea:85:89:58:67:4c:a6:
d5:4b:5a:3b:e6:8f:b4:c9:75:f5:ac:89:8f:21:6e:
63:19:76:61:55:7a:31:62:69:15:6c:f7:15:cb:b7:
67:da:ab:49:1f:f0:e2:72:ce:de:ad:03:b1:fa:d2:
ec:4e:64:af:a9:c4:fc:70:90:b1:57:70:b9:91:7a:
6b:73:f0:1e:e9:2e:82:c9:54:21:71:bf:dd:0b:e5:
35:ec:a8:0e:f6:e7:dd:bb:37:da:00:a2:7f:a5:d4:
6b:89:8f:a9:ad:e4:98:35:54:54:c6:d0:1b:10:e7:
66:50:ed:47:ac:b5:04:15:14:7e:b2:f6:f9:84:4e:
eb:d2:b7:e1:af:ed:46:45:83:7c:5c:42:5f:33:a9:
9a:c9:7e:4b:e5:a4:68:da:e8:7c:c2:7e:03:96:96:
8f:bd:7f:9d:35:d2:32:db:75:64:cc:7f:44:19:84:
81:69:70:e6:4c:72:63:f2:33:1b:36:91:2b:99:c2:
2b:49:f7:bb:bf:fa:4e:9e:9f:2c:02:c6:0a:10:1c:
50:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7E:07:98:86:68:61:EC:F8:78:00:56:CA:99:24:5E:49:52:2B:DD
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/En4HmIZoYez4eABWypkkXklSK90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.203.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ed:a0:0c:9e:34:ff:e1:51:7b:22:ad:9c:75:86:b5:66:bf:
9c:18:16:c9:92:cb:47:7a:08:2a:dc:6a:27:f4:5a:47:9f:70:
58:9c:de:f3:ae:75:c0:91:e0:46:68:36:5c:a8:38:e9:2a:77:
e0:ac:b0:a4:5a:04:a9:c8:d5:e8:30:bb:e9:1a:21:f9:3c:cf:
94:90:89:30:aa:5a:14:64:90:c5:bc:ef:68:ed:69:4c:4c:fc:
68:cf:50:47:7a:c0:d9:54:34:22:2a:10:c8:23:57:9a:99:aa:
75:cb:95:b0:c4:c5:b0:7a:df:eb:45:54:7c:5c:11:4f:27:92:
0b:b2:d7:ff:b2:9f:b6:e6:80:92:8d:0e:b2:84:ff:cc:aa:9e:
58:bf:bb:87:b4:6e:96:d9:54:cf:47:cf:ec:18:8a:e9:59:7a:
da:e4:a4:93:07:37:45:7b:1e:41:9a:9e:1b:af:71:3f:54:34:
eb:fd:f1:02:eb:c9:95:f2:f1:34:a4:0a:4e:5b:f1:42:fc:e9:
e4:fc:8a:a5:b5:b3:40:51:6f:63:3c:11:05:e1:10:45:53:1a:
75:c9:56:57:6f:4c:ee:89:d4:b9:aa:bc:b2:c0:23:d2:bc:ba:
7e:ec:21:6e:0c:7d:dc:30:f7:32:6a:c1:63:94:cd:bf:89:7f:
f5:78:41:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:13 2024 by rpki-client on console-ams.rpki-client.org